There are two authentication headers required in API calls with the Condeco application:

  1. Ocp-Apim-Subscription-Key: API security token
  2. Session Token: Condeco Application security token also known as the Bearer Token.

Subscription Keys

The subscription keys are assigned after registering. See Register for access for more information.

A subscription key is provided on your account for each of the following:

  • CostCode
  • ExternalBookings
  • HierarchyMapping
  • VendorServices
  • Visitor

See: Conceco API and Endpoints for more information.

Session Token

As well as a subscription key you must provide a validated Session Token to access the Condeco API. Session Tokens are valid for 12 hours. To generate a Session Token, provide the Client ID and Password to your Condeco application e.g. Contact your Condeco representative for these values.

When the parameters are passed, a Session Token is provided for interacting with the Condeco API.

An example JSON object with the access token (Access Token is valid for 12 hours):

     "access_token": "eyJ0eXAiOiJKV1Q........excxqRSdf1PqrlI",
     "token_type": "bearer",
     "expires_in": 43199


Was this helpful?

Yes No
You indicated this topic was not helpful to you ...
Could you please leave a comment telling us why? Thank you!
Thanks for your feedback.

Post your comment on this topic.

Please do not use this for support questions.
Condeco Support

Post Comment